Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Support IDP-Initiated (unsolicited responses) SSO using SAML Artifact Binding #34861

New issue
New issue
Open
enhancement
Open
Support IDP-Initiated (unsolicited responses) SSO using SAML Artifact Binding#34861
enhancement
Labels
area/identity-brokeringkind/enhancementCategorizes a PR related to an enhancementstatus/triageteam/core-iam
@pedroigor

Description

@pedroigor
pedroigor
opened on Nov 12, 2024

Description

The SAML Broker was recently updated [1] to support SP-Initiated SSO when using the SAML Artifact Binding.

AFAIK, the SAML specification states about IDP-Initiated SSO but using the HTTP POST Binding. However, IdP-Initiated SSO using SAML Artifact Binding is also supported by other IAM solutions.

Even though unsolicited responses are not usually recommended, the effort to support it should mainly involve making it secure by introducing additional checks when processing unsolicited responses and probably guarded by a switch in the broker configuration.

[1] #29619

Discussion

No response

Motivation

Support IdP-Initiated SSO in SAML Broker.

Details

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/identity-brokeringkind/enhancementCategorizes a PR related to an enhancementstatus/triageteam/core-iam

    Type

    enhancement

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions